5585d07f3d1fcc52e50956e807d1c70e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5585d07f3d1fcc52e50956e807d1c70e
Size

61KB
MD5

5585d07f3d1fcc52e50956e807d1c70e
SHA1

62b4ce9988ea633b9a547a14363b527cf6ff42af
SHA256

6219ead78cef79a926146047e2656e5dc9a04e7667b68f11965e5a6af4d8501e
SHA512

7158aa7418248250c5f1b3fa13d748e48ea6968141ad9d853d85537706a98a1f8548b05f7ced4c09c18ccbd6fec30c0da2b5ce9a96e1a9cda91934c52f89661e
SSDEEP

1536:69DUGrVFVEa88883piipD53NUB47iywbmNpvgFxY3TtwTQT:69ZrVFVv8888j53I42ogFxYDtwi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5585d07f3d1fcc52e50956e807d1c70e

Files

5585d07f3d1fcc52e50956e807d1c70e
.exe windows:4 windows x86 arch:x86

aed1ac93eb1d919018b71198d9fcafa3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

PeekConsoleInputA
GetCommandLineA
HeapDestroy
InterlockedExchange
LoadLibraryExA
IsDebuggerPresent
CreateIoCompletionPort
WaitForSingleObject
GlobalSize
HeapCreate
VirtualProtect
GetTimeFormatA
GetSystemDefaultLCID
GlobalMemoryStatus
GetACP
GetCurrentProcessId
ResumeThread
GetOEMCP
GetStdHandle
GetModuleHandleA
GetTapeStatus

user32

GetWindowTextLengthA
EndPaint
GetDC
FrameRect
DragDetect
GetClassNameA
wsprintfA
DrawTextA
GetTitleBarInfo
ShowWindow
GetWindow
GetParent
ReleaseDC
FillRect
BeginPaint
GetFocus
SetForegroundWindow
GetDlgItem
GetCursorPos

gdi32

GetClipBox
CreatePalette
CloseFigure
GetLayout
CreateBitmap

secur32

DecryptMessage

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 780KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ